최신 312-39 무료덤프 - EC-COUNCIL Certified SOC Analyst (CSA)

문제1

In which of the following incident handling and response stages, the root cause of the incident must be found from the forensic results?

A. Eradication

B. Evidence Handling

C. Systems Recovery

D. Evidence Gathering

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제2

Rinni, SOC analyst, while monitoring IDS logs detected events shown in the figure below.

What does this event log indicate?

A. SQL Injection Attack

B. XSS Attack

C. Parameter Tampering Attack

D. Directory Traversal Attack

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제3

Which of the following factors determine the choice of SIEM architecture?

A. Network Topology

B. DHCP Configuration

C. DNS Configuration

D. SMTP Configuration

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제4

Sam, a security analyst with INFOSOL INC., while monitoring and analyzing IIS logs, detected an event matching regex /\\w*((\%27)|(\'))((\%6F)|o|(\%4F))((\%72)|r|(\%52))/ix.
What does this event log indicate?

A. SQL Injection Attack

B. XSS Attack

C. Parameter Tampering Attack

D. Directory Traversal Attack

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제5

Which one of the following is the correct flow for Setting Up a Computer Forensics Lab?

A. Planning and budgeting -> Physical location and structural design considerations -> Forensics lab licensing ->Work area considerations -> Human resource considerations -> Physical security recommendations

B. Planning and budgeting -> Physical location and structural design considerations-> Forensics lab licensing -> Human resource considerations -> Work area considerations -> Physical security recommendations

C. Planning and budgeting -> Physical location and structural design considerations -> Work area considerations -> Human resource considerations -> Physical security recommendations -> Forensics lab licensing

D. Planning and budgeting -> Forensics lab licensing -> Physical location and structural design considerations -> Work area considerations -> Physical security recommendations -> Human resource considerations

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제6

Chloe, a SOC analyst with Jake Tech, is checking Linux systems logs. She is investigating files at /var/log/ wtmp.
What Chloe is looking at?

A. System boot log

B. Error log

C. Login records

D. General message and system-related stuff

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제7

Daniel is a member of an IRT, which was started recently in a company named Mesh Tech. He wanted to find the purpose and scope of the planned incident response capabilities.
What is he looking for?

A. Incident Response Mission

B. Incident Response Vision

C. Incident Response Resources

D. Incident Response Intelligence

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제8

What is the process of monitoring and capturing all data packets passing through a given network using different tools?

A. Network Scanning

B. DNS Footprinting

C. Network Sniffing

D. Port Scanning

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제9

In which phase of Lockheed Martin's - Cyber Kill Chain Methodology, adversary creates a deliverable malicious payload using an exploit and a backdoor?

A. Weaponization

B. Delivery

C. Exploitation

D. Reconnaissance

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제10

An attacker exploits the logic validation mechanisms of an e-commerce website. He successfully purchases a product worth $100 for $10 by modifying the URL exchanged between the client and the server.
Original
URL: http://www.buyonline.com/product.aspx?profile=12
&debit=100
Modified URL: http://www.buyonline.com/product.aspx?profile=12
&debit=10
Identify the attack depicted in the above scenario.

A. SQL Injection Attack

B. Denial-of-Service Attack

C. Parameter Tampering Attack

D. Session Fixation Attack

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

최신 312-39 무료덤프 - EC-COUNCIL Certified SOC Analyst (CSA)

우리와 연락하기

유용한 링크

최신 업데이트